Class: Aws::CloudFront::Types::ResponseHeadersPolicySecurityHeadersConfig

Inherits:
Struct
  • Object
show all
Defined in:
gems/aws-sdk-cloudfront/lib/aws-sdk-cloudfront/types.rb

Overview

Note:

When making an API call, you may pass ResponseHeadersPolicySecurityHeadersConfig data as a hash:

{
  xss_protection: {
    override: false, # required
    protection: false, # required
    mode_block: false,
    report_uri: "string",
  },
  frame_options: {
    override: false, # required
    frame_option: "DENY", # required, accepts DENY, SAMEORIGIN
  },
  referrer_policy: {
    override: false, # required
    referrer_policy: "no-referrer", # required, accepts no-referrer, no-referrer-when-downgrade, origin, origin-when-cross-origin, same-origin, strict-origin, strict-origin-when-cross-origin, unsafe-url
  },
  content_security_policy: {
    override: false, # required
    content_security_policy: "string", # required
  },
  content_type_options: {
    override: false, # required
  },
  strict_transport_security: {
    override: false, # required
    include_subdomains: false,
    preload: false,
    access_control_max_age_sec: 1, # required
  },
}

A configuration for a set of security-related HTTP response headers. CloudFront adds these headers to HTTP responses that it sends for requests that match a cache behavior associated with this response headers policy.

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#content_security_policyTypes::ResponseHeadersPolicyContentSecurityPolicy

The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.

For more information about the Content-Security-Policy HTTP response header, see Content-Security-Policy in the MDN Web Docs.



12276
12277
12278
12279
12280
12281
12282
12283
12284
12285
# File 'gems/aws-sdk-cloudfront/lib/aws-sdk-cloudfront/types.rb', line 12276

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end

#content_type_optionsTypes::ResponseHeadersPolicyContentTypeOptions

Determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff.

For more information about the X-Content-Type-Options HTTP response header, see X-Content-Type-Options in the MDN Web Docs.



12276
12277
12278
12279
12280
12281
12282
12283
12284
12285
# File 'gems/aws-sdk-cloudfront/lib/aws-sdk-cloudfront/types.rb', line 12276

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end

#frame_optionsTypes::ResponseHeadersPolicyFrameOptions

Determines whether CloudFront includes the X-Frame-Options HTTP response header and the header’s value.

For more information about the X-Frame-Options HTTP response header, see X-Frame-Options in the MDN Web Docs.



12276
12277
12278
12279
12280
12281
12282
12283
12284
12285
# File 'gems/aws-sdk-cloudfront/lib/aws-sdk-cloudfront/types.rb', line 12276

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end

#referrer_policyTypes::ResponseHeadersPolicyReferrerPolicy

Determines whether CloudFront includes the Referrer-Policy HTTP response header and the header’s value.

For more information about the Referrer-Policy HTTP response header, see Referrer-Policy in the MDN Web Docs.



12276
12277
12278
12279
12280
12281
12282
12283
12284
12285
# File 'gems/aws-sdk-cloudfront/lib/aws-sdk-cloudfront/types.rb', line 12276

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end

#strict_transport_securityTypes::ResponseHeadersPolicyStrictTransportSecurity

Determines whether CloudFront includes the Strict-Transport-Security HTTP response header and the header’s value.

For more information about the Strict-Transport-Security HTTP response header, see Strict-Transport-Security in the MDN Web Docs.



12276
12277
12278
12279
12280
12281
12282
12283
12284
12285
# File 'gems/aws-sdk-cloudfront/lib/aws-sdk-cloudfront/types.rb', line 12276

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end

#xss_protectionTypes::ResponseHeadersPolicyXSSProtection

Determines whether CloudFront includes the X-XSS-Protection HTTP response header and the header’s value.

For more information about the X-XSS-Protection HTTP response header, see X-XSS-Protection in the MDN Web Docs.



12276
12277
12278
12279
12280
12281
12282
12283
12284
12285
# File 'gems/aws-sdk-cloudfront/lib/aws-sdk-cloudfront/types.rb', line 12276

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end